Vulnerabilities > Searchwp

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-08	CVE-2022-40223	Missing Authorization vulnerability in Searchwp Nonce token leakage and missing authorization in SearchWP premium plugin <= 4.2.5 on WordPress leading to plugin settings change. network low complexity searchwp CWE-862	4.3
2022-08-15	CVE-2022-2535	Authorization Bypass Through User-Controlled Key vulnerability in Searchwp Live Ajax Search The SearchWP Live Ajax Search WordPress plugin before 1.6.2 does not ensure that users making a live search are limited to published posts only, allowing unauthenticated users to make a crafted query disclosing private/draft/pending post titles along with their permalink network low complexity searchwp CWE-639	5.3

Vulnerabilities > Searchwp {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Searchwp"}]}